Code between the Lines: Semantic Analysis of Android Applications

Johannes Feichtner; Stefan Gruber

doi:10.1007/978-3-030-58201-2_12

Code between the Lines: Semantic Analysis of Android Applications

Johannes Feichtner^*, Stefan Gruber

^*Korrespondierende/r Autor/-in für diese Arbeit

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Abstract

Static and dynamic program analysis are the key concepts researchers apply to uncover security-critical implementation weaknesses in Android applications. As it is often not obvious in which context problematic statements occur, it is challenging to assess their practical impact. While some flaws may turn out to be bad practice but not undermine the overall security level, others could have a serious impact. Distinguishing them requires knowledge of the designated app purpose.

In this paper, we introduce a machine learning-based system that is capable of generating natural language text describing the purpose and core functionality of Android apps based on their actual code. We design a dense neural network that captures the semantic relationships of resource identifiers, string constants, and API calls contained in apps to derive a high-level picture of implemented program behavior. For arbitrary applications, our system can predict precise, human-readable keywords and short phrases that indicate the main use-cases apps are designed for.

We evaluate our solution on 67,040 real-world apps and find that with a precision between 69% and 84% we can identify keywords that also occur in the developer-provided description in Google Play. To avoid incomprehensible black box predictions, we apply a model explaining algorithm and demonstrate that our technique can substantially augment inspections of Android apps by contributing contextual information.

Originalsprache	englisch
Titel	ICT Systems Security and Privacy Protection - 35th IFIP TC 11 International Conference, SEC 2020, Proceedings
Redakteure/-innen	Marko Hölbl, Tatjana Welzer, Kai Rannenberg
Erscheinungsort	Cham
Herausgeber (Verlag)	Springer International Publishing AG
Seiten	171-186
Seitenumfang	16
Band	580
ISBN (elektronisch)	978-3-030-58201-2
ISBN (Print)	978-3-030-58200-5
DOIs	https://doi.org/10.1007/978-3-030-58201-2_12
Publikationsstatus	Veröffentlicht - Sept. 2020
Veranstaltung	35th International Conference on ICT Systems Security and Privacy Protection - Maribor, Slowenien Dauer: 21 Sept. 2020 → 23 Sept. 2020 https://sec2020.um.si

Publikationsreihe

Name	IFIP Advances in Information and Communication Technology
Band	580 IFIP
ISSN (Print)	1868-4238
ISSN (elektronisch)	1868-422X

Konferenz

Konferenz	35th International Conference on ICT Systems Security and Privacy Protection
Kurztitel	IFIP SEC 2020
Land/Gebiet	Slowenien
Ort	Maribor
Zeitraum	21/09/20 → 23/09/20
Internetadresse	https://sec2020.um.si

ASJC Scopus subject areas

Informationssysteme und -management
Information systems
Computernetzwerke und -kommunikation

Zugriff auf Dokument

10.1007/978-3-030-58201-2_12

mainAkzeptiertes Autorenmanuskript, 535 KB

Andere Dateien und Links

http://www.scopus.com/inward/record.url?scp=85092100355&partnerID=8YFLogxK

A-SIT - Zentrum für sichere Informationstechnologie Austria
Stranacher, K., Dominikus, S., Leitold, H., Marsalek, A., Teufl, P., Bauer, W., Aigner, M. J., Rössler, T., Neuherz, E., Dietrich, K., Zefferer, T., Mangard, S., Payer, U., Orthacker, C., Lipp, P., Reiter, A., Knall, T., Bratko, H., Bonato, M., Suzic, B., Zwattendorfer, B., Kreuzhuber, S., Oswald, M. E., Tauber, A., Posch, R., Bratko, D., Feichtner, J., Ivkovic, M., Reimair, F., Wolkerstorfer, J. & Scheibelhofer, K.
21/05/99 → 6/08/20
Projekt: Arbeitsgebiet

Dieses zitieren

Feichtner, J., & Gruber, S. (2020). Code between the Lines: Semantic Analysis of Android Applications. in M. Hölbl, T. Welzer, & K. Rannenberg (Hrsg.), ICT Systems Security and Privacy Protection - 35th IFIP TC 11 International Conference, SEC 2020, Proceedings (Band 580, S. 171-186). (IFIP Advances in Information and Communication Technology; Band 580 IFIP). Springer International Publishing AG . https://doi.org/10.1007/978-3-030-58201-2_12

Code between the Lines: Semantic Analysis of Android Applications. / Feichtner, Johannes; Gruber, Stefan.
ICT Systems Security and Privacy Protection - 35th IFIP TC 11 International Conference, SEC 2020, Proceedings. Hrsg. / Marko Hölbl; Tatjana Welzer; Kai Rannenberg. Band 580 Cham: Springer International Publishing AG , 2020. S. 171-186 (IFIP Advances in Information and Communication Technology; Band 580 IFIP).

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Feichtner, J & Gruber, S 2020, Code between the Lines: Semantic Analysis of Android Applications. in M Hölbl, T Welzer & K Rannenberg (Hrsg.), ICT Systems Security and Privacy Protection - 35th IFIP TC 11 International Conference, SEC 2020, Proceedings. Bd. 580, IFIP Advances in Information and Communication Technology, Bd. 580 IFIP, Springer International Publishing AG , Cham, S. 171-186, 35th International Conference on ICT Systems Security and Privacy Protection, Maribor, Slowenien, 21/09/20. https://doi.org/10.1007/978-3-030-58201-2_12

Feichtner J, Gruber S. Code between the Lines: Semantic Analysis of Android Applications. in Hölbl M, Welzer T, Rannenberg K, Hrsg., ICT Systems Security and Privacy Protection - 35th IFIP TC 11 International Conference, SEC 2020, Proceedings. Band 580. Cham: Springer International Publishing AG . 2020. S. 171-186. (IFIP Advances in Information and Communication Technology). doi: 10.1007/978-3-030-58201-2_12

Feichtner, Johannes ; Gruber, Stefan. / Code between the Lines: Semantic Analysis of Android Applications. ICT Systems Security and Privacy Protection - 35th IFIP TC 11 International Conference, SEC 2020, Proceedings. Hrsg. / Marko Hölbl ; Tatjana Welzer ; Kai Rannenberg. Band 580 Cham : Springer International Publishing AG , 2020. S. 171-186 (IFIP Advances in Information and Communication Technology).

@inproceedings{77316b358edd4f85a7e5426b43ba1d98,

title = "Code between the Lines: Semantic Analysis of Android Applications",

abstract = "Static and dynamic program analysis are the key concepts researchers apply to uncover security-critical implementation weaknesses in Android applications. As it is often not obvious in which context problematic statements occur, it is challenging to assess their practical impact. While some flaws may turn out to be bad practice but not undermine the overall security level, others could have a serious impact. Distinguishing them requires knowledge of the designated app purpose.In this paper, we introduce a machine learning-based system that is capable of generating natural language text describing the purpose and core functionality of Android apps based on their actual code. We design a dense neural network that captures the semantic relationships of resource identifiers, string constants, and API calls contained in apps to derive a high-level picture of implemented program behavior. For arbitrary applications, our system can predict precise, human-readable keywords and short phrases that indicate the main use-cases apps are designed for.We evaluate our solution on 67,040 real-world apps and find that with a precision between 69% and 84% we can identify keywords that also occur in the developer-provided description in Google Play. To avoid incomprehensible black box predictions, we apply a model explaining algorithm and demonstrate that our technique can substantially augment inspections of Android apps by contributing contextual information.",

keywords = "Android, TF-IDF, Deep Learning, NLP",

author = "Johannes Feichtner and Stefan Gruber",

year = "2020",

month = sep,

doi = "10.1007/978-3-030-58201-2_12",

language = "English",

isbn = "978-3-030-58200-5",

volume = "580",

series = "IFIP Advances in Information and Communication Technology",

publisher = "Springer International Publishing AG ",

pages = "171--186",

editor = "Marko H{\"o}lbl and Tatjana Welzer and Kai Rannenberg",

booktitle = "ICT Systems Security and Privacy Protection - 35th IFIP TC 11 International Conference, SEC 2020, Proceedings",

address = "Switzerland",

note = "35th International Conference on ICT Systems Security and Privacy Protection, IFIP SEC 2020 ; Conference date: 21-09-2020 Through 23-09-2020",

url = "https://sec2020.um.si",

}

TY - GEN

T1 - Code between the Lines: Semantic Analysis of Android Applications

AU - Feichtner, Johannes

AU - Gruber, Stefan

PY - 2020/9

Y1 - 2020/9

N2 - Static and dynamic program analysis are the key concepts researchers apply to uncover security-critical implementation weaknesses in Android applications. As it is often not obvious in which context problematic statements occur, it is challenging to assess their practical impact. While some flaws may turn out to be bad practice but not undermine the overall security level, others could have a serious impact. Distinguishing them requires knowledge of the designated app purpose.In this paper, we introduce a machine learning-based system that is capable of generating natural language text describing the purpose and core functionality of Android apps based on their actual code. We design a dense neural network that captures the semantic relationships of resource identifiers, string constants, and API calls contained in apps to derive a high-level picture of implemented program behavior. For arbitrary applications, our system can predict precise, human-readable keywords and short phrases that indicate the main use-cases apps are designed for.We evaluate our solution on 67,040 real-world apps and find that with a precision between 69% and 84% we can identify keywords that also occur in the developer-provided description in Google Play. To avoid incomprehensible black box predictions, we apply a model explaining algorithm and demonstrate that our technique can substantially augment inspections of Android apps by contributing contextual information.

AB - Static and dynamic program analysis are the key concepts researchers apply to uncover security-critical implementation weaknesses in Android applications. As it is often not obvious in which context problematic statements occur, it is challenging to assess their practical impact. While some flaws may turn out to be bad practice but not undermine the overall security level, others could have a serious impact. Distinguishing them requires knowledge of the designated app purpose.In this paper, we introduce a machine learning-based system that is capable of generating natural language text describing the purpose and core functionality of Android apps based on their actual code. We design a dense neural network that captures the semantic relationships of resource identifiers, string constants, and API calls contained in apps to derive a high-level picture of implemented program behavior. For arbitrary applications, our system can predict precise, human-readable keywords and short phrases that indicate the main use-cases apps are designed for.We evaluate our solution on 67,040 real-world apps and find that with a precision between 69% and 84% we can identify keywords that also occur in the developer-provided description in Google Play. To avoid incomprehensible black box predictions, we apply a model explaining algorithm and demonstrate that our technique can substantially augment inspections of Android apps by contributing contextual information.

KW - Android

KW - TF-IDF

KW - Deep Learning

KW - NLP

UR - http://www.scopus.com/inward/record.url?scp=85092100355&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-58201-2_12

DO - 10.1007/978-3-030-58201-2_12

M3 - Conference paper

SN - 978-3-030-58200-5

VL - 580

T3 - IFIP Advances in Information and Communication Technology

SP - 171

EP - 186

BT - ICT Systems Security and Privacy Protection - 35th IFIP TC 11 International Conference, SEC 2020, Proceedings

A2 - Hölbl, Marko

A2 - Welzer, Tatjana

A2 - Rannenberg, Kai

PB - Springer International Publishing AG

CY - Cham

T2 - 35th International Conference on ICT Systems Security and Privacy Protection

Y2 - 21 September 2020 through 23 September 2020

ER -

Code between the Lines: Semantic Analysis of Android Applications

Abstract

Publikationsreihe

Konferenz

ASJC Scopus subject areas

Zugriff auf Dokument

Andere Dateien und Links

Fingerprint

Projekte

A-SIT - Zentrum für sichere Informationstechnologie Austria

Dieses zitieren